CVE-2026-26010
Analyzed Analyzed - Analysis Complete
JWT Disclosure in OpenMetadata Ingestion API Enables Privilege Escalation

Publication date: 2026-02-11

Last updated on: 2026-02-13

Assigner: GitHub, Inc.

Description
OpenMetadata is a unified metadata platform. Prior to 1.11.8, calls issued by the UI against /api/v1/ingestionPipelines leak JWTs used by ingestion-bot for certain services (Glue / Redshift / Postgres). Any read-only user can gain access to a highly privileged account, typically which has the Ingestion Bot Role. This enables destructive changes in OpenMetadata instances, and potential data leakage (e.g. sample data, or service metadata which would be unavailable per roles/policies). This vulnerability is fixed in 1.11.8.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-11
Last Modified
2026-02-13
Generated
2026-06-16
AI Q&A
2026-02-11
EPSS Evaluated
2026-06-15
NVD
CVE-2026-26010
EUVD
EUVD-2026-6197
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
open-metadata openmetadata to 1.11.8 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-269 The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Mitigation Strategies

Immediate mitigation steps include upgrading OpenMetadata to version 1.11.8 or later, where this vulnerability is fixed.

If upgrading is not immediately possible, restrict access to the /api/v1/ingestionPipelines endpoint to only trusted admin or service accounts to prevent read-only users from accessing JWT tokens.

Rotate ingestion bot tokens in affected environments to invalidate any leaked JWTs.

Implement monitoring to detect unauthorized access or use of ingestion-bot JWTs.

Executive Summary

CVE-2026-26010 is a high-severity privilege escalation vulnerability in OpenMetadata versions prior to 1.11.8. It occurs because the API endpoint /api/v1/ingestionPipelines leaks JSON Web Tokens (JWTs) used by highly privileged ingestion-bot accounts for services like Glue, Redshift, and Postgres.

This leakage allows any read-only user to obtain these JWTs and impersonate the ingestion bot role, which has elevated privileges. As a result, unauthorized users can perform destructive actions and access sensitive data that should be restricted by roles and policies.

The root cause is improper privilege management, where the system fails to properly assign or check privileges, leading to unintended control by unauthorized actors.

Impact Analysis

This vulnerability can have serious impacts including unauthorized access to highly privileged accounts within OpenMetadata.

  • Destructive changes to OpenMetadata instances.
  • Potential leakage of sensitive data such as sample data and service metadata that should be restricted.
  • Compromise of data integrity due to unauthorized mutation of database descriptions and other metadata.
Compliance Impact

I don't know

Detection Guidance

[{'type': 'paragraph', 'content': 'This vulnerability can be detected by monitoring API calls to the endpoint /api/v1/ingestionPipelines for unexpected exposure of JWT tokens used by ingestion-bot accounts. Specifically, look for API responses that include jwtToken fields accessible to read-only users, which should not normally have access to these tokens.'}, {'type': 'paragraph', 'content': 'Commands to detect this might include using network traffic inspection tools like curl or wget to query the vulnerable endpoint and check for JWT token leakage, for example:'}, {'type': 'list_item', 'content': "curl -X GET https://<openmetadata-instance>/api/v1/ingestionPipelines -H 'Authorization: Bearer <read-only-user-token>'"}, {'type': 'list_item', 'content': 'Inspect the response for presence of jwtToken fields that should not be exposed.'}, {'type': 'paragraph', 'content': 'Additionally, monitoring logs for unusual access patterns or privilege escalations involving ingestion-bot roles can help detect exploitation attempts.'}] [1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-26010. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart